Information Security and Data Privacy Analyst
WWE
Stamford, CTThis was removed by the employer on 4/9/2020 10:21:00 AM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Search for Information Security and Data Privacy Analyst jobs in Stamford-CT
Search all Information Security and Data Privacy Analyst postings
Full Time Job
World Wrestling Entertainment Inc. (WWE) with headquarters located in Stamford, Connecticut is seeking an Information Security and Data Privacy Analyst to support the company's data security and privacy initiatives.
The Information Security and Data Privacy Analyst will report into the VP, of Information Security and Technology Risk Management and support the Data Privacy Program Manager. This position will also work with members of the Information Security, Legal Affairs, Enterprise Technology and Technology Risk Management teams.
The role of the Information Security and Data Privacy Analyst will be responsible for the implementation of critical security controls and data privacy measures. In addition to establishing global security policies, assisting in the maturing of cyber security programs and fostering data security and privacy awareness.
The successful candidate will have hands-on and practical experience in areas of cyber and data security, security methodologies and frameworks, including experience in establishing both technical and organizational controls to protect the confidentiality, integrity and availability of data.
Primary Responsibilities:
• Identify, develop and implement data security standards to ensure compliance with data privacy regulations as it relates to GDPR and CCPA.
• Work across the lines of business in developing processes for the handling and protection of personal data.
• Work with the cyber and technology teams in the deployment of tools and processes for data protection and security.
• Work with technology teams in evaluating and documenting Role Based Access Control (RBAC) and Principle of Least Privilege (PoLP).
• Evaluate existing and/or establish new data security controls for effectiveness and efficiency.
• Participate with various technical teams in developing both event management and incident response procedures.
• Work with the IT support teams to evaluate application security, data encryption methods and supporting technologies.
• Work with the IT support teams to evaluate WWE's data security in the private and public cloud infrastructures.
• Participate in and perform Privacy Impact Assessments .
• Participate in and perform Data Protection Impact Assessments in support of GDPR.
• Assist in the configuration and management of WWE's privacy management platform.
Qualifications:
• Four-year degree in computer science or related combined work/education experience.
• Minimum of five years experience in Cyber Security/Information Security.
• Hands-on experience in supporting and maintaining cyber security tools and technologies, including IDS/IPS, UTM, WAF, NAC, SIEM and endpoint protection.
• Experience working within a global, IT organization.
• Experience in supporting IT infrastructures.
• Knowledge in cloud security architectures as it relates to data protection.
• Strong knowledge of TCP/IP, routing and switching technologies.
• Knowledge of the Open Systems Interconnection model (OSI model).
• Experience in the implementation of CIS controls in a practical and systematic manner.
• Knowledge of NIST 800-53 and NIST Cyber Security Framework (CSF)
• Knowledge in Microsoft Windows Server, file/folder access permissions and Active Directory Services (ADS) administration.
• Knowledge in vulnerability and patch management programs.
• Experience in data compliance programs a plus.
• Experience in application security and role-based access controls.
• Experience in a variety of cyber security tools, including AWS security stack a plus
• Experience in data privacy regulations (GDPR and CCPA) a plus
• Certified Information Systems Security Professional (CISSP) a plus.
• Ability to analyze complex information and identify key and relevant points, including communicating in a relevant and easy to understand manner.
• Practical experience in implementing security policies, procedures and technologies.
• Strong verbal and written communication skills.
• Strong experience in developing technical documents.
• Strong attention to detail, well-organized, and able to manage time efficiently.
• Team player with ability to deal effectively with individuals at all levels.
• High degree of initiative requiring little or no supervision, sound judgment, and the ability to prioritize assignments, solve problems, and meet deadlines.
• Ability to produce high-quality work in a timely fashion in a fast-paced environment.
_
WWE is an Equal Opportunity Affirmative Action employer and is subject to federal regulations pertaining to employment. WWE does not unlawfully discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, marital status, veteran status, or any other basis prohibited under federal, state or local laws governing non-discrimination in employment in every location in which the Company has facilities. WWE also provides reasonable accommodation for qualified individuals with disabilities in accordance with the Americans with Disabilities Act (ADA) and any other state or local laws. For information about Privacy and Information Security for WWE employment candidates, please review our Candidate Privacy Policy. For information regarding Terms and Conditions for this and other WWE websites, please review our Terms and Conditions of Use.